<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Aptos;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Aptos",sans-serif;
mso-ligatures:standardcontextual;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#467886;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ligatures:standardcontextual;}
span.ui-provider
{mso-style-name:ui-provider;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
mso-ligatures:none;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:6759679;
mso-list-template-ids:-222285308;}
@list l0:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level2
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level3
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level5
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level6
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level8
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l0:level9
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1
{mso-list-id:632447081;
mso-list-template-ids:-196837198;}
@list l1:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level2
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level3
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level5
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level6
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level8
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l1:level9
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l2
{mso-list-id:870530806;
mso-list-type:hybrid;
mso-list-template-ids:668001040 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l2:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l2:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l2:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l2:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3
{mso-list-id:1496217853;
mso-list-type:hybrid;
mso-list-template-ids:1152963076 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l3:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l3:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l3:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l3:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l4
{mso-list-id:1690644693;
mso-list-template-ids:412520892;}
@list l4:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level2
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:1.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level3
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:1.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:2.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level5
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:2.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level6
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:3.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:3.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level8
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:4.0in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l4:level9
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:4.5in;
mso-level-number-position:left;
text-indent:-.25in;
mso-ansi-font-size:10.0pt;
font-family:Symbol;}
@list l5
{mso-list-id:1827281157;
mso-list-type:hybrid;
mso-list-template-ids:518057006 67698689 67698691 67698693 67698689 67698691 67698693 67698689 67698691 67698693;}
@list l5:level1
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l5:level2
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l5:level3
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l5:level4
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l5:level5
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l5:level6
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
@list l5:level7
{mso-level-number-format:bullet;
mso-level-text:\F0B7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Symbol;}
@list l5:level8
{mso-level-number-format:bullet;
mso-level-text:o;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:"Courier New";}
@list l5:level9
{mso-level-number-format:bullet;
mso-level-text:\F0A7;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;
font-family:Wingdings;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#467886" vlink="#96607D" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal"><a name="_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Good morning,</span></a><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;mso-ligatures:none"><o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"> <o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">The SOC Services team is reporting on the vulnerability:</span></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;mso-ligatures:none">
<b>CVE-</b></span></span><span style="mso-bookmark:_Hlk122600425"><span class="ui-provider"><b><span style="font-family:"Calibri",sans-serif">2024-27348</span></b></span></span><span style="mso-bookmark:_Hlk122600425"><b><span style="font-family:"Calibri",sans-serif;mso-ligatures:none">:
RCE-Remote Command Execution vulnerability in Apache HugeGraph-Server.</span></b></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;mso-ligatures:none"> Due to its high visibility and knowledge of the software installed
in the state environment, we are providing this in-depth information:<o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"> <o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><b><u><span style="font-family:"Calibri",sans-serif">History</span></u></b></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">: On April 1, 2024, Apache
released HugeGraph 1.3.0 to fix a vulnerability (CVE-2024-27348) that allowed remote threat actors to execute arbitrary commands in the Graph Traversal Language. On June 1, 2024, a security researcher published a Proof-of-Concept (PoC) exploit for CVE-2024-27348.
The vulnerability is currently assigned a CVSS score of 9.8.<o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;background:yellow;mso-highlight:yellow"><o:p> </o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">The following products are affected:<o:p></o:p></span></span></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoListParagraph" style="margin-left:0in;mso-list:l5 level1 lfo3"><span style="mso-bookmark:_Hlk122600425">Versions prior to 1.3.0 (Java8 & Java11)<o:p></o:p></span></li></ul>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"><o:p> </o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Fixed versions:<o:p></o:p></span></span></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="mso-list:l2 level1 lfo6"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Version 1.3.0 (Java11+enable Auth system)<o:p></o:p></span></span></li></ul>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"><o:p> </o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">The patch for the vulnerability can be found here:
</span></span><a href="https://github.com/apache/incubator-hugegraph/commit/713d88d1fd9953c3c3e3f130389501910ba40e1d"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">https://github.com/apache/incubator-hugegraph/commit/713d88d1fd9953c3c3e3f130389501910ba40e1d</span></span><span style="mso-bookmark:_Hlk122600425"></span></a><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"><o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;background:yellow;mso-highlight:yellow"><o:p> </o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><b><u><span style="font-family:"Calibri",sans-serif">Intelligence</span></u></b></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">: As of July 17, 2024,
some sources claim the vulnerability has been confirmed as being exploited in the wild but has not been confirmed yet by CISA. Proof-of-concept code has been publicly available since early June 2024, putting older versions at high risk<o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;background:yellow;mso-highlight:yellow"><o:p> </o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><b><u><span style="font-family:"Calibri",sans-serif">Workarounds:</span></u></b></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"> No workarounds are
available for this vulnerability.<o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><b><u><span style="font-family:"Calibri",sans-serif"><o:p><span style="text-decoration:none"> </span></o:p></span></u></b></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><b><u><span style="font-family:"Calibri",sans-serif">How it works</span></u></b></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">: The vulnerability
exploits a weakness in the Gremlin graph traversal language API allowing threat actors to bypass sandbox restrictions and compromise server integrity. Exploitation of CVE-2024-27368 is possible due to insufficient reflection filtering within HugeSecurityManager,
which enables unauthorized access and manipulation of system processes.<o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"><o:p> </o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><b><u><span style="font-family:"Calibri",sans-serif">Post-Exploit</span></u></b></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">: Upon successful exploitation
of the vulnerability, a threat actor could execute code remotely.<o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;color:red"><o:p> </o:p></span></span></p>
<p class="MsoNormal" style="margin-bottom:12.0pt"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">As of July 18, 2024, Tenable has released one plugin for the vulnerability. Currently it only is available to Tenable WAS
scanning, but the Tenable platform has not been updated as of this morning.<o:p></o:p></span></span></p>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" style="border-collapse:collapse">
<tbody>
<tr style="height:18.4pt">
<td width="113" valign="top" style="width:85.1pt;border:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" align="center" style="margin-bottom:12.0pt;text-align:center">
<span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Plugin ID<o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
<td width="396" valign="top" style="width:297.0pt;border:solid windowtext 1.0pt;border-left:none;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" align="center" style="margin-bottom:12.0pt;text-align:center">
<span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Plugin Name<o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
<td width="114" valign="top" style="width:85.4pt;border:solid windowtext 1.0pt;border-left:none;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" align="center" style="margin-bottom:12.0pt;text-align:center">
<span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Severity<o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
<td width="288" valign="top" style="width:216.1pt;border:solid windowtext 1.0pt;border-left:none;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" align="center" style="margin-bottom:12.0pt;text-align:center">
<span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Platform<o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
</tr>
<tr style="height:18.4pt">
<td width="113" valign="top" style="width:85.1pt;border:solid windowtext 1.0pt;border-top:none;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" align="center" style="margin-bottom:12.0pt;text-align:center">
<span style="mso-bookmark:_Hlk122600425"></span><a href="https://www.tenable.com/plugins/was/114381"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;color:windowtext">114381</span></span><span style="mso-bookmark:_Hlk122600425"></span></a><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"><o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
<td width="396" valign="top" style="width:297.0pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" style="margin-bottom:12.0pt"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Apache Hugegraph 1.0.0 < 1.3.0 Remote Command Execution<o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
<td width="114" valign="top" style="width:85.4pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" align="center" style="margin-bottom:12.0pt;text-align:center">
<span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Critical<o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
<td width="288" valign="top" style="width:216.1pt;border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt;height:18.4pt">
<p class="MsoNormal" align="center" style="margin-bottom:12.0pt;text-align:center">
<span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Tenable Web Application Scanning Only<o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
</tr>
</tbody>
</table>
<p class="MsoNormal" style="margin-bottom:12.0pt"><span style="mso-bookmark:_Hlk122600425"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><b><u><span style="font-family:"Calibri",sans-serif">Recommended Actions</span></u></b></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">:<o:p></o:p></span></span></p>
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"> <o:p></o:p></span></span></p>
<ul style="margin-top:0in" type="disc">
<li class="MsoNormal" style="mso-list:l3 level1 lfo9"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Verify host has not been compromised before applying patches.<o:p></o:p></span></span></li><li class="MsoListParagraph" style="margin-left:0in;mso-list:l3 level1 lfo9"><span style="mso-bookmark:_Hlk122600425">Apply appropriate updates provided by vendor to vulnerable systems immediately after appropriate testing.<o:p></o:p></span></li><li class="MsoNormal" style="mso-list:l3 level1 lfo9"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Run all software as a non-privileged user (one without administrative privileges) to diminish the effects of a successful
attack.<o:p></o:p></span></span></li><li class="MsoNormal" style="mso-list:l3 level1 lfo9"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif">Apply the Principle of Least Privilege to all systems and services.<o:p></o:p></span></span></li></ul>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="702" style="width:526.5pt;border-collapse:collapse">
<tbody>
<tr style="height:72.45pt">
<td width="135" valign="top" style="width:101.6pt;padding:0in 5.4pt 0in 5.4pt;height:72.45pt">
<p class="MsoNormal"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;mso-ligatures:none"><o:p> </o:p></span></span></p>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="702" style="width:526.5pt;border-collapse:collapse">
<tbody>
<tr style="height:72.45pt">
<td width="135" valign="top" style="width:101.6pt;padding:0in 5.4pt 0in 5.4pt;height:72.45pt">
<p class="MsoNormal" style="line-height:105%"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;mso-ligatures:none"><img border="0" width="121" height="87" style="width:1.2604in;height:.9062in" id="Picture_x0020_1" src="cid:image001.png@01DAD8DE.6F704920" alt="Enterprise Information Services logo"></span></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"><o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
<td width="567" valign="top" style="width:424.9pt;padding:0in 5.4pt 0in 5.4pt;height:72.45pt">
<p class="MsoNormal" style="line-height:105%"><span style="mso-bookmark:_Hlk122600425"><b><span style="font-family:"Calibri",sans-serif;color:black">Will Mauschbaugh<o:p></o:p></span></b></span></p>
<p class="MsoNormal" style="line-height:105%"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;color:black">Security Operations Center Analyst<o:p></o:p></span></span></p>
<p class="MsoNormal" style="line-height:105%"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;color:black">Enterprise Information Services<o:p></o:p></span></span></p>
<p class="MsoNormal" style="line-height:105%"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;color:black">Cyber Security Services (CSS)<o:p></o:p></span></span></p>
<p class="MsoNormal" style="line-height:105%"><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif;color:black">Cell: (971) 304-5956</span></span><span style="mso-bookmark:_Hlk122600425"><span style="font-family:"Calibri",sans-serif"><o:p></o:p></span></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
</tr>
<tr style="height:3.4pt">
<td width="702" colspan="2" valign="top" style="width:526.5pt;padding:0in 5.4pt 0in 5.4pt;height:3.4pt">
<p class="MsoNormal" style="line-height:105%"><span style="mso-bookmark:_Hlk122600425"><i><span style="font-family:"Calibri",sans-serif;color:#2E74B5">“Ensuring accessible, reliable and secure state technology systems that equitably serve Oregonians.”<o:p></o:p></span></i></span></p>
</td>
<span style="mso-bookmark:_Hlk122600425"></span>
</tr>
</tbody>
</table>
<p class="MsoNormal" style="line-height:105%"><span style="font-size:12.0pt;line-height:105%;font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
</td>
<td width="567" valign="top" style="width:424.9pt;padding:0in 5.4pt 0in 5.4pt;height:72.45pt">
<p class="MsoNormal" style="line-height:105%"><span style="font-size:12.0pt;line-height:105%;font-family:"Calibri",sans-serif;color:black"><o:p> </o:p></span></p>
</td>
</tr>
<tr style="height:2.65pt">
<td width="702" colspan="2" valign="top" style="width:526.5pt;padding:0in 5.4pt 0in 5.4pt;height:2.65pt">
<p class="MsoNormal" style="line-height:105%"><i><span style="font-size:12.0pt;line-height:105%;font-family:"Calibri",sans-serif;color:black"><o:p> </o:p></span></i></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal" style="margin-bottom:12.0pt"><o:p> </o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</body>
</html>